home

gwspro.exe

Alchemy Mindworks

Publisher:
Alchemy Mindworks  (signed and verified)

MD5:
8d2eed3b0e28d902f5e362b979c09c0f

SHA-1:
2c8d8b96c9b2e403c38c74d99e4ecacea35ea357

SHA-256:
9fa924e083aa01db7ac4a993d916278d6a317543b543009b39d30f955e6519b3

Scanner detections:
1 / 68

Status:
Inconclusive  (not enough data for an accurate detection)

Analysis date:
4/19/2024 8:19:53 PM UTC  (today)

Scan engine
Detection
Engine version

Avira AntiVirus
W32/Sality.AT
7.11.30.172

File size:
7.8 MB (8,190,664 bytes)

File type:
Executable application (Win32 EXE)

Common path:
C:\Program Files\alchemy mindworks\graphic workshop professional 3\gwspro.exe

Digital Signature
Signed by:
Alchemy Mindworks

Authority:
The USERTRUST Network

Valid from:
8/23/2005 8:00:00 PM

Valid to:
8/24/2007 7:59:59 PM

Subject:
CN=Alchemy Mindworks, O=Alchemy Mindworks, STREET=Box 500, L=Beeton, S=Ontario, PostalCode=L0G 1A0, C=CA

Issuer:
CN=UTN-USERFirst-Object, OU=http://www.usertrust.com, O=The USERTRUST Network, L=Salt Lake City, S=UT, C=US

Serial number:
00A76A9E9289FD81DD25BAAA059DAFCCC7

File PE Metadata
Compilation timestamp:
3/26/2019 10:25:03 AM

OS version:
1.0

OS bitness:
Win32

Subsystem:
Windows GUI

Linker version:
2.25

CTPH (ssdeep):
196608:YL3ZXoEnK6BiKlvWXm7vRSTEO6O7TiAftRUxL7/CViF3:YL3ZXoEK6Bi0vW+ip6OjfLgLDC8F3

Entry address:
0x1000

Entry point:
A1, 5A, A0, 56, 00, C1, E0, 02, A3, 5E, A0, 56, 00, 57, 51, 33, C0, BF, FC, 98, 58, 00, B9, D4, 04, 59, 00, 3B, CF, 76, 05, 2B, CF, FC, F3, AA, 59, 5F, 64, 67, 8B, 16, 04, 00, 89, 15, 6E, A0, 56, 00, 8B, 42, F8, A3, 66, A0, 56, 00, 8B, 42, FC, A3, 6A, A0, 56, 00, 83, EA, 04, 89, 15, F8, D0, 58, 00, 83, EA, 04, 3B, D4, 73, 02, 8B, E2, 6A, 00, E8, EF, EF, 15, 00, 59, 68, 2C, A0, 56, 00, 6A, 00, E8, 25, 7B, 16, 00, A3, 62, A0, 56, 00, 6A, 00, E9, 64, 69, 16, 00, E9, B3, F0, 15, 00, 00, 00, 00, 55, 8B, EC, 81...
 
[+]

Entropy:
7.1521

Code size:
1.4 MB (1,476,608 bytes)

Shell Open Command
Open type:
AVIFile

Command:
C:\Program Files\alchemy mindworks\graphic workshop professional 3\gwspro.exe %1


Scan gwspro.exe - Powered by Reason Core Security
herdProtect is a second line of defense malware removal platform powered by 68 anti-malware engines in the cloud. Since no single anti-malware program is perfect 100% of the time, herdProtect utilizes a 'herd' of multiple engines to guarantee the widest coverage and the earliest possible detection.